Skip to content

Infection Monkey v1.12.0
Compare
Choose a tag to compare
@mssalvatore mssalvatore released this 29 Oct 13:06
· 13276 commits to develop since this release
v1.12.0
67c87e0

This release enhances Infection Monkey's ransomware simulation capability by adding the ability to propagate via PowerShell remoting. It also provides numerous bug fixes, as well as UX and security improvements. To start downloading it while you read the release notes, go to the Infection Monkey website.

Changelog

Added

  • A new exploiter that allows propagation via PowerShell Remoting. #1246
  • A warning regarding antivirus when agent binaries are missing. #1450
  • A deployment.json file to store the deployment type. #1205

Changed

  • The name of the "Communicate as new user" post-breach action to "Communicate
    as backdoor user". #1410
  • Resetting login credentials also cleans the contents of the database. #1495
  • ATT&CK report messages (more accurate now). #1483
  • T1086 (PowerShell) now also reports if ps1 scripts were run by PBAs. #1513
  • ATT&CK report messages to include internal config options as reasons
    for unscanned attack techniques. #1518

Removed

  • Internet access check on agent start. #1402
  • The "internal.monkey.internet_services" configuration option that enabled
    internet access checks. #1402
  • Disused traceroute binaries. #1397
  • "Back door user" post-breach action. #1410
  • Stale code in the Windows system info collector that collected installed
    packages and WMI info. #1389
  • Insecure access feature in the Monkey Island. #1418
  • The "deployment" field from the server_config.json. #1205
  • The "Execution through module load" ATT&CK technique,
    since it can no longer be exercise with current code. #1416
  • Browser window pop-up when Monkey Island starts on Windows. #1428

Fixed

  • Misaligned buttons and input fields on exploiter and network configuration
    pages. #1353
  • Credentials shown in plain text on configuration screens. #1183
  • Crash when unexpected character encoding is used by ping command on German
    language systems. #1175
  • Malfunctioning timestomping PBA. #1405
  • Malfunctioning shell startup script PBA. #1419
  • Trap command produced no output. #1406
  • Overlapping Guardicore logo in the landing page. #1441
  • PBA table collapse in security report on data change. #1423
  • Unsigned Windows agent binaries in Linux packages are now signed. #1444
  • Some of the gathered credentials no longer appear in plaintext in the
    database. #1454
  • Encryptor breaking with UTF-8 characters. (Passwords in different languages
    can be submitted in the config successfully now.) #1490
  • Mimikatz collector no longer fails if Azure credential collector is disabled.
    #1512, #1493
  • Unhandled error when "modify shell startup files PBA" is unable to find
    regular users. #1507
  • ATT&CK report bug that showed different techniques' results under a technique
    if the PBA behind them was the same. #1514
  • ATT&CK report bug that said that the technique ".bash_profile and
    .bashrc" was not attempted when it actually was attempted but failed. #1511
  • Bug that periodically cleared the telemetry table's filter. #1392
  • Crashes, stack traces, and other malfunctions when data from older versions
    of Infection Monkey is present in the data directory. #1114
  • Broken update links. #1524

Security

  • Generate a random password when creating a new user for CommunicateAsNewUser
    PBA. #1434
  • Credentials gathered from victim machines are no longer stored plaintext in
    the database. #1454
  • Encrypt the database key with user's credentials. #1463

New contributors 🙌

Welcome and thanks to our new contributors:
@TRGamer-tech

Attached binaries and hashes:

Filename Type Version SHA256 Hash
InfectionMonkey-v1.12.0.AppImage island 1.12.0 1325f2aa1d0c27aec2e2f9864ed53c53c524bd208313f87ea6606f59c90ff310
monkey-linux-32 agent 1.12.0 d941943046db48cf0eb7f11e144a79749848ae6b50014833c5390936e829f6c3
monkey-linux-64 agent 1.12.0 1ad52eabd704a9b0fbf642fa552629f30d3c5c27e431a687bd4cba4e0104d3f7
monkey-windows-32 agent 1.12.0 3c10f610f47c4fd227cf85f6bf800d66ed31fe37dc2e2ed408860483685ba504
monkey-windows-64 agent 1.12.0 02e5e051a96e2ca61ae8e661b3a5828ee53a0fc00aca6502d5c73a46754f0d07
sc_monkey_runner32.so sambacry 68fd441c92f9d2c3201f7072eafbe9a4c56339139395daeba959836bd3f8b212
sc_monkey_runner64.so sambacry 94e1d1ac64bfc4a63f590f8add21c10f26b2b0ffb6b69518ed2c53909c8faf18

Contributors

TRGamer-tech
Assets 9
Loading